/** * Activation du compte. * @author Cam * @return tpl */ protected function main() { if (empty($_GET['mid']) || empty($_GET['ca'])) { header('Location: ./'); } if (is_logged_in()) { redir(Nw::$lang['common']['already_connected'], false, './'); } $return_valid = false; inc_lib('users/mbr_act_exists'); if (mbr_act_exists($_GET['mid'], $_GET['ca'])) { inc_lib('users/get_info_mbr'); $donnees_compte = get_info_mbr($_GET['mid']); if ($donnees_compte['u_active'] == 0) { inc_lib('users/valid_account'); inc_lib('admin/gen_cachefile_nb_members'); valid_account($_GET['mid']); gen_cachefile_nb_members(); generate_members_sitemap(); redir(Nw::$lang['users']['compte_valide'], true, './'); $return_valid = true; } } if (!$return_valid) { redir(Nw::$lang['users']['compte_valid_error'], false, './'); } }
<?php if (!user_admin()) { include PATH_GLOBAL_VIEW . 'error_not_admin.php'; } else { require_once PATH_MODEL . 'members.php'; valid_account($_GET['hash_validation']); header("Location: index.php?module=admin&action=users&id=" . $_SESSION['id']); //reload Admin user page } //end of user_admin
$form_edit_user->add('Text', 'nabz_token')->label('Token du Nabz')->required($required)->value($nabz_token); $form_edit_user->add('Submit', 'submit')->value('Éditer'); if ($form_edit_user->is_valid($_POST)) { list($new_login, $new_pass, $new_email, $new_balance, $valid_account, $new_nabz_serial, $new_nabz_token) = $form_edit_user->get_cleaned_data('login', 'password', 'email_addr', 'balance', 'valid_account', 'nabz_serial', 'nabz_token'); if ($new_pass != $infos_user['user_pass']) { $new_pass = sha1($new_pass); } else { $new_pass = $infos_user['user_pass']; } if (nabz_exists($new_nabz_serial, $new_nabz_token) == true) { update_infos_nabz($id_user, $new_nabz_serial, $new_nabz_token); } else { $error_update[] = "Couple token/serial incorrect."; } //end nabz_exist $update = update_infos_user($new_login, $new_pass, $new_email, $new_balance, $id_user); if ($update[0] == 23000) { $error = ereg_replace("for key 3", "", $update[2]); $error_update[] = $error; } else { $msg_confirm[] = "Modification effectuée"; } //end $update if (!empty($valid_account)) { valid_account($infos_user['hash_validation']); } //header("Location: index.php?module=admin&action=users&id=".$_SESSION['id']); //Reload page } //end of form is_valid include PATH_VIEW . 'form_edit_users.php'; }
<?php //only display this page if user is not connected if (user_connected()) { include PATH_GLOBAL_VIEW . 'error_already_connected.php'; } else { ?> <?php //Is there an hash on the url ? if (!empty($_GET['hash'])) { if (valid_account($_GET['hash'])) { include PATH_VIEW . 'account_validated.php'; } else { //error in validation include PATH_VIEW . 'error_account_validation.php'; } } else { include PATH_VIEW . 'error_account_validation.php'; } ?> <?php } //end user_connected verification
header('Location:' . BASE_URL . 'index.php'); exit; } //Neu nguoi dung chua dang nhap thi dang nhap if (isset($_POST["login-click"])) { //thu vien validate require_once LIB_PATH . '/validate.php'; //Khoi tao bien $loginError = array('message' => '', 'username' => '', 'password' => ''); //khoi tao bien ok $loginOk = TRUE; //Khoi tao bien luu du lieu $username = trim($_POST["login-username"]); $password = trim($_POST["login-password"]); //validate du lieu if (!valid_account($username)) { $loginOk = FALSE; //Thong tin loi $loginError['username'] = '******'; } if (!valid_password($password)) { $loginOk = FALSE; $loginError['password'] = '******'; } else { $password = md5($password); } //Ket noi co so du lieu require_once LIB_PATH . '/database.php'; db_connect(); if ($loginOk == TRUE) { $checkUserQuery = "SELECT * FROM user WHERE uaccount = '{$username}' and upassword = '******'";